https://github.com/ankush-003/gorunner

a linux container runtime written in golang
https://github.com/ankush-003/gorunner

golang linux-containers

Last synced: 12 months ago
JSON representation

a linux container runtime written in golang

• Host: GitHub
• URL: https://github.com/ankush-003/gorunner
• Owner: ankush-003
• Created: 2025-03-09T07:33:34.000Z (12 months ago)
• Default Branch: main
• Last Pushed: 2025-03-09T17:22:55.000Z (12 months ago)
• Last Synced: 2025-03-09T18:20:50.370Z (12 months ago)
• Topics: golang, linux-containers
• Language: Go
• Homepage:
• Size: 1.89 MB
• Stars: 0
• Watchers: 1
• Forks: 0
• Open Issues: 0
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

          
# goRunner 🐳

a linux container runtime written in golang

## How to create a child process ?

- `fork()` system call is used to create a new process. It creates a new process by duplicating the calling process. The new process, called the child, is an exact copy of the calling process, called the parent, except for a few values that are different. [Read more](https://cs.brown.edu/courses/csci0300/2022/notes/l17.html)

- golang uses `os/exec` package to create a child process. [Read more](https://golang.org/pkg/os/exec/)

- `os/exec` package provides a way to create a child process and execute a command in that process. 

Steps Involved in Execution:

1. Create a Command Struct

   - exec.Command(name string, arg ...string) initializes a command with the given program name and arguments.

2. Start the Process

   - cmd.Start() spawns a new process but does not wait for it to complete.

   - The process is run asynchronously.

3. Wait for the Process to Finish

   - cmd.Wait() waits for the process to complete.

   - This is needed when using cmd.Start().

4. Get Output

   - cmd.Output() runs the command and returns its standard output.

   - cmd.CombinedOutput() returns both stdout and stderr.

## How do we isolate the child process ?

- namespace is a feature of the Linux kernel that partitions kernel resources such that one set of processes sees one set of resources while another set of processes sees a different set of resources.

- The Linux kernel provides six types of namespaces: 

  - Mount (mnt)

  - Process ID (pid)

  - Network (net)

  - Inter-process communication (ipc)

  - UTS (uts includes hostname and NIS domain name)

  - User (user)

  - cgroup (control group means resource limitation)

- The `clone()` system call is used to create a new process in a new namespace. [Read more](https://medium.com/@teddyking/namespaces-in-go-basics-e3f0fc1ff69a)

# References 🔗

- [bocker- docker in 100 lines of bash](https://medium.com/@teddyking/namespaces-in-go-basics-e3f0fc1ff69a)

- [containers from scratch](https://medium.com/@ssttehrani/containers-from-scratch-with-golang-5276576f9909)

- [Vessel - A simple container runtime](https://medium.com/swlh/build-containers-from-scratch-in-go-part-1-namespaces-c07d2291038b)

- [Containers from scratch in Go](https://www.youtube.com/watch?v=8fi7uSYlOdc)

- [Build your own container using less than 100 lines of Go](https://www.infoq.com/articles/build-a-container-golang/)

- [ns-process - learning about linux namespaces](https://github.com/teddyking/ns-process)